On Mon, Oct 25, 2010 at 8:42 PM, Joseph L. Casale <[email protected]> wrote: >> Wouldn't it make more sense to scan-to-FTP/SMB/whatever, >> and just have the copier drop the file there, rather than futz >> around with email filters? That's what we do; works great. > > With a generic account that it will likely use to > access the resource, that won't work in my environment.
I don't get it. What's the issue? If the issue is "don't want generic accounts to have access to everything", do what we do: - Account a member of "Domain Guests" group - Account not a member of any other groups - Account can only logon to FTP server - FTP service restricted by IP address - Permissions restricted such that the account can only create, not read back or modify You could go further with a non-MS-IIS FTP server and not use a Windows account at all, and have it locked to a restricted directory. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
